GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,960
Composer 4,279
Erlang 31
GitHub Actions 21
Go 2,056
Maven 5,237
npm 3,740
NuGet 668
pip 3,421
Pub 12
RubyGems 891
Rust 873
Swift 36

Unreviewed advisories

All unreviewed 238,982

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

Unreviewed advisories have not been assessed by GitHub for quality and do not connect to the Dependabot service.

75 advisories

Filter by severity

Sort by

Least recently updated

In OPPO Store APP, there's a possible escalation of privilege due to improper input validation. High Unreviewed

CVE-2024-1610 was published Dec 18, 2024

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority. High Unreviewed

CVE-2024-1714 was published Feb 21, 2024

NLnet Labs Unbound up to and including version 1.21.0 contains a vulnerability when handling... Moderate Unreviewed

CVE-2024-8508 was published Oct 3, 2024

IBM InfoSphere Information Server 11.7 could allow an authenticated user to GUI to not load or... Moderate Unreviewed

CVE-2024-52901 was published Dec 12, 2024

An issue was discovered in Samsung Mobile Processor and Wearable Processor Exynos 2100, 1280,... High Unreviewed

CVE-2024-39343 was published Dec 2, 2024

The HTTP server in Mongoose before 7.10 accepts requests containing negative Content-Length headers. High Unreviewed

CVE-2023-34188 was published Jun 23, 2023

Florent Thiéry has found that selected Axis devices were vulnerable to handling certain ethernet... High Unreviewed

CVE-2024-47257 was published Nov 26, 2024

Insufficient data validation in Mojo in Google Chrome prior to 129.0.6668.89 allowed a remote... Moderate Unreviewed

CVE-2024-9369 was published Nov 27, 2024

A memory corruption vulnerability exists in the affected products when parsing DFT files. Local... High Unreviewed

CVE-2024-6068 was published Nov 14, 2024

An issue in the Bluetooth Low Energy implementation of Realtek RTL8762E BLE SDK v1.4.0 allows... Moderate Unreviewed

CVE-2024-48290 was published Nov 7, 2024

Faulty input validation in the core of Apache allows malicious or exploitable backend/content... High Unreviewed

CVE-2023-38709 was published Apr 4, 2024

Improper input validation in SMU may allow an attacker with privileges and a compromised physical... Low Unreviewed

CVE-2023-31304 was published Aug 13, 2024

In SecurityCommand message after as security has been actived., there is a possible improper... Moderate Unreviewed

CVE-2023-52343 was published Apr 8, 2024

Improper input validation in Power Management Firmware (PMFW) may allow an attacker with... Moderate Unreviewed

CVE-2023-31310 was published Aug 13, 2024

In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the vulnerability enables network and same-site... Moderate Unreviewed

CVE-2022-31629 was published Sep 29, 2022

Improper Validation of Specified Quantity in Input vulnerability in Mitsubishi Electric CNC... Moderate Unreviewed

CVE-2024-7316 was published Oct 18, 2024

Denial-of-service (DoS) vulnerability due to improper validation of specified type of input issue... High Unreviewed

CVE-2023-38744 was published Aug 3, 2023

A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC)... Critical Unreviewed

CVE-2021-31346 was published May 24, 2022

A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC)... Critical Unreviewed

CVE-2021-31345 was published May 24, 2022

Improper Input Validation vulnerability exists in the Hitachi Energy MicroSCADA X SYS600's ICCP... High Unreviewed

CVE-2022-2277 was published Sep 15, 2022

A vulnerability in the HCI Modbus TCP COMPONENT of Hitachi Energy RTU500 series CMU Firmware that... High Unreviewed

CVE-2022-28613 was published May 3, 2022

Improper input validation in some Zoom clients may allow an authenticated user to conduct a... Moderate Unreviewed

CVE-2024-24690 was published Feb 14, 2024

CIRCUTOR Q-SMT in its firmware version 1.0.4, could be affected by a denial of service (DoS)... Critical Unreviewed

CVE-2024-8887 was published Sep 18, 2024

The Eaton Foreseer software provides multiple customizable input fields for the users to... Moderate Unreviewed

CVE-2024-31416 was published Sep 13, 2024

A vulnerability classified as problematic was found in SourceCodester Food Ordering Management... Moderate Unreviewed

CVE-2024-8558 was published Sep 7, 2024

Previous 1 2 3 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

75 advisories